Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore advanced Microsoft SharePoint Online security vulnerabilities and attack techniques in this 25-minute conference talk that delves into lesser-known APIs and their exploitation potential. Learn how attackers can leverage SharePoint's internal APIs to bypass Microsoft Graph detection methods and evade modern security controls within Azure environments. Discover enumeration techniques that allow lateral movement throughout Office 365 tenants, understand the differences between SharePoint Online internals and Microsoft Graph APIs, and examine how regular business users with SharePoint access can potentially compromise sensitive organizational resources. Gain insights into file sharing security control bypasses and acquire practical defensive strategies for preventing and detecting direct API usage attempts, equipping security teams with knowledge to better protect their cloud environments against sophisticated adversaries targeting interconnected Microsoft services.
